Beginning this Saturday, March 4th 2017, UMKC students will be required to set their passwords using the new Secure Authentication Toolkit. If a student has not registered their security data in the Secure Authentication Toolkit before this weekend and needs to set a password, the toolkit will recognize the student has not registered and will automatically prompt the student to register their information so they can then set their password. In conjunction, all Pathway password reset links will be transitioned from the old PeopleSoft password reset tools to the new Secure Authentication Toolkit password reset tools. This is another step in the process UM campuses are adopting in order to establish a more secure verification process to better protect personal data and University systems.

Earlier this week, the UMKC IS password page went live, which features the new Secure Authentication Toolkit password reset tools as well as detailed information regarding which tool to use depending upon each user’s particular situation. The UMKC Call Center has been directing current students to register their information in Secure Authentication Toolkit since November and new students will now be able to register and set a password in one process.

On February 15th a few new email retention policies will be applied to ALL accounts, as part of the Exchange 2016 migration process. Please note once messages in the identified folders pass the retention periods outlined below, they will be automatically deleted.

What will change?

“Deleted Items” – Any items that are deleted or placed in the Deleted Items folder that are older than 30 days will automatically be moved to the Recoverable Items folder.

“Junk E-mail” – Any items older than 30 days in the Junk E-mail folder will be moved to the Recoverable Items folder.

“Recover Deleted Items” – After steps one and two are completed, those items will then reside in the Recoverable Items folder for an additional 30 days. After 30 days, those items will be permanently deleted.

Effectively, this means all Users have up to 60 days to recover items that were deleted, by using the Recover Deleted Items tool within Outlook or OWA. If you have items you wish to save, please move them to a different personal folder for safe keeping. Any items left in the folders listed above will be subject to the retention policies.

Be mindful this policy affects not only your UMKC mailbox, but also all departmental email accounts as well.

The UM System upgrade to Exchange 2016 will begin on December 20, 2016(after 5pm). Once your mailbox has been successfully moved, you may be required to restart Outlook. There will be no cosmetic changes to your Outlook desktop application. However, the OutlookWebAccess (OWA) application will change, sporting a new splash page and online interface.

In preparation for the migration from Exchange 2010 to Exchange 2016, the Outlook Web Access (OWA) website will be updated on October 12th. (See new design below.) Also please note the other preparatory and informational items below. We will be contacting mailbox owners who are close to exceeding their mailbox quotas in the next week. The migration of mailboxes to the new Exchange 2016 system is not yet scheduled but is expected in the coming weeks as soon as testing and preparatory work has been completed.

The Outlook Web Access websitehas been redesigned. The new design is as follows:

Clean up/out your email! In Exchange 2016, all item properties will be included in quota calculations, including the Deleted Items and Junk E-Mail folders. As a result of this change, mailbox sizes are expected to increase. However, if you are already close to the current quota of 15 GB, you may find that you cannot send or receive email after the migration. We are contacting users who may be close to reaching their Exchange quota in the next week.

Learn how Managed Folders are changing. After the upgrade to Exchange 2016 Managed Folders will work a little differently. Managed Folders will continue to be created as email accounts are provisioned. However, the visual indication that an email is expired will no longer be used.

NOTE: Retention tags still exist, but the flag will not show automatically. You have to open the email to see the retention flag status.

To better protect against phishing attempts, and malicious email attacks, an enhancement will be made to email filtering. The UM System email team will implement this change starting September 28th.

Inbound email is currently evaluated on how likely the message is spam. For emails that are evaluated as high “likely spam”, three changes will be made to the message to alert you of the risk, and to provide guidance in the event a message is improperly tagged as spam:

The first change is that all high spam likelihood messages will have this tag added to the subject line:
“Beware: Potentially Malicious Content”

The second part of this change is that email with this high likelihood of being spam will have any click-links removed, and replaced with the text:
“[Malicious URL Removed]”

The last part is that messages that are modified will also have a line of text added to the top of the email, providing this guidance about the modification of the email:

“The URL contained in this message was identified as malicious and was removed for your protection. If you need legitimate access to this URL contact the sender directly and work through the issue off-line.”

The hope is that this will greatly reduce the number of phishing emails that get in un-modified, and also reduce the number of emails that come in with links to virus-infected web sites.

If you have emails from a specific sender or specific organization that are consistently tagged as ‘potentially malicious’ , please contact the Call Center. The sending organization may be on a list of potential spam sources, or there may be other problems we can help the sending organization resolve to lower the spam rating on their email.

Remember, do not click on links when an email makes claims about an account problem. For password expiration notices, always hand-type the UMKC web site address, and search for ‘password reset’. If there is a question about the legitimacy of an email message that mentions an account problem, contact the UMKC Call Center.

As of September 26, 2016, Box will discontinue support for Internet Explorer 9 and 10. Since Microsoft stopped supporting and issuing software updates for IE9 and IE10 in January 2016, usage of these browsers now poses a security risk. Failure to upgrade to a newer version of IE or using an alternate browser will result in an inability to access Box’s Web Application with the latest updates.

If you have any concerns about UMKC Box and browser compatibility, please contact the IS Call Center or your IT Liaison.

Information Services will also have staff on-site at Volker campus residence halls:

Friday, August 19th from 12pm to 5pm (Oak Hall classroom)

Saturday, August 20th from 12pm to 5pm (Oak Hall classroom)

We encourage students with questions or connectivity issues to visit the on-site staff during one of these times. If you have any other questions, or would like to learn more about IT resources at UMKC please visit our Getting Started with IT Resources for Students guide at: http://www.umkc.edu/is/gettingstarted/students/

While it is always important to ensure your computer is up-to-date now is a good time to double check your settings to ensure a smooth process connecting to SafeConnect and getting online in the residence halls.

Please check Windows Update on Windows and Software Update on Apple OSX to ensure your computer is fully updated and patched. It is also important to ensure your mobile phones are updated as well as they can have similar security concerns as computers. On Apple iOS this is done under Settings -> General -> Software Update and on Android under Settings -> About -> System Updates.

Apple has released an update for its mobile operating system, iOS 9.3.4, which fixes a memory corruption issue that could be exploited “to execute arbitrary code with kernel privileges.” The update blocks a jailbreak bug known as IOMobileFrameBuffer.

Please check your iOS device to ensure it is fully updated and patched. This is done under Settings -> General -> Software Update.

If you have questions about updating your iOS device, please contact the Call Center.

This afternoon we received reports that some mobile devices are getting prompted to activate an Exchange ActiveSync policy. We believe this is related to the Exchange team installing the first Exchange 2016 server in the environment today. These prompts are primarily impacting Android devices. This is a blank policy that is enforcing no actual device settings.

If you see this prompt on a mobile device you use to access your UMKC email account, you have two options to address the issue:

1.) You can Accept the prompt to activate the policy on the device. Since no actual policy values are being enforced, no settings will be applied.

After activating the policy, you can verify the device settings are not present by going to: Email settings-> Account -> Security options -> Security policy list.

2.) The email account can be removed and then added back to the mobile device. Upon adding the account back you should not see the EAS policy prompt.

We are working to disable this behavior and regret any inconvenience it may cause.

This summer, Panopto will replace Tegrity as UMKC’s lecture-capture solution. We have been working closely with both companies to convert existing content from Tegrity to Panopto, and you can expect to see older Tegrity content in Panopto in the next few weeks. As part of the conversion, we will not be copying any Tegrity content created after March 31st, 2016, into Panopto. If you have content in Tegrity that was made after this date that you would like copied over, you can follow these instructions to download your own Tegrity content and upload it to Panopto.

The Tegrity system will remain online until it’s end-of-life date of June 10th, 2016. Course and organization sites will continue to have a Tegrity Courses link in the course menu, but this should be used for reference purposes only. If you would like to use lecture-capture in your course or organization, please provision the course to use Panopto by following these instructions.